From 96a5ccbf2930180fbcfae8d286acbd7416b00af8 Mon Sep 17 00:00:00 2001 From: Nikodemus Siivola Date: Sun, 29 Apr 2007 23:27:37 +0000 Subject: [PATCH] 1.0.5.10: interrupt-proofing SUB-GC * When SUB-GC is entered with GC and interrupts enabled we cannot just blithely set *GC-PENDING*, as unwinding from an interrupt would cause us to run with GC blocked for an unbounded time: disable interrupts before setting it. --- NEWS | 2 ++ src/code/gc.lisp | 97 ++++++++++++++++++++++++++++------------------------- version.lisp-expr | 2 +- 3 files changed, 54 insertions(+), 47 deletions(-) diff --git a/NEWS b/NEWS index 8b794b8..d547ec4 100644 --- a/NEWS +++ b/NEWS @@ -14,6 +14,8 @@ changes in sbcl-1.0.6 relative to sbcl-1.0.5: declared ignored. * bug fix: DEFSETF lambda lists without &ENVIRONMENT no longer cause a STYLE-WARNING to be signalled (regression from 1.0.4.) + * bug fix: an asynchronous interrupt could previously leave the + system running with GC inhibited. changes in sbcl-1.0.5 relative to sbcl-1.0.4: * incompatible change: removed writer methods for host-ent-name, diff --git a/src/code/gc.lisp b/src/code/gc.lisp index 7945c27..c0c7b02 100644 --- a/src/code/gc.lisp +++ b/src/code/gc.lisp @@ -185,52 +185,57 @@ run in any thread.") (sb!thread::mutex-value *already-in-gc*)) ;; With gencgc, unless *GC-PENDING* every allocation in this ;; function triggers another gc, potentially exceeding maximum - ;; interrupt nesting. - (setq *gc-pending* t) - (unless *gc-inhibit* - (sb!thread:with-mutex (*already-in-gc*) - (let ((old-usage (dynamic-usage)) - (new-usage 0)) - (unsafe-clear-roots) - ;; We need to disable interrupts for GC, but we also want - ;; to run as little as possible without them. - (without-interrupts - (gc-stop-the-world) - (let ((start-time (get-internal-run-time))) - (collect-garbage gen) - (incf *gc-run-time* - (- (get-internal-run-time) start-time))) - (setf *gc-pending* nil - new-usage (dynamic-usage)) - (gc-start-the-world)) - ;; Interrupts re-enabled, but still inside the mutex. - ;; In a multithreaded environment the other threads will - ;; see *n-b-f-o-p* change a little late, but that's OK. - (let ((freed (- old-usage new-usage))) - ;; GENCGC occasionally reports negative here, but the - ;; current belief is that it is part of the normal order - ;; of things and not a bug. - (when (plusp freed) - (incf *n-bytes-freed-or-purified* freed))))) - ;; Outside the mutex, these may cause another GC. FIXME: it can - ;; potentially exceed maximum interrupt nesting by triggering - ;; GCs. - ;; - ;; Can that be avoided by having the finalizers and hooks run only - ;; from the outermost SUB-GC? - ;; - ;; KLUDGE: Don't run the hooks in GC's triggered by dying threads, - ;; so that user-code never runs with - ;; (thread-alive-p *current-thread*) => nil - ;; The long-term solution will be to keep a separate thread for - ;; finalizers and after-gc hooks. - (when (sb!thread:thread-alive-p sb!thread:*current-thread*) - (run-pending-finalizers) - (dolist (hook *after-gc-hooks*) - (handler-case - (funcall hook) - (error (c) - (warn "Error calling after-GC hook ~S:~% ~A" hook c)))))))) + ;; interrupt nesting. If *GC-INHIBIT* is not true, however, + ;; there is no guarantee that we would ever check for pending + ;; GC -- so in that case we must first disable interrupts, which + ;; needs to be done for GC anyways... + (cond (*gc-inhibit* + (setf *gc-pending* t)) + (t + (without-interrupts + (setf *gc-pending* t) + (sb!thread:with-mutex (*already-in-gc*) + (let ((old-usage (dynamic-usage)) + (new-usage 0)) + (unsafe-clear-roots) + + (gc-stop-the-world) + (let ((start-time (get-internal-run-time))) + (collect-garbage gen) + (incf *gc-run-time* + (- (get-internal-run-time) start-time))) + (setf *gc-pending* nil + new-usage (dynamic-usage)) + (gc-start-the-world) + + ;; In a multithreaded environment the other threads will + ;; see *n-b-f-o-p* change a little late, but that's OK. + (let ((freed (- old-usage new-usage))) + ;; GENCGC occasionally reports negative here, but the + ;; current belief is that it is part of the normal order + ;; of things and not a bug. + (when (plusp freed) + (incf *n-bytes-freed-or-purified* freed)))))) + + ;; Outside the mutex, interrupts enabled: these may cause + ;; another GC. FIXME: it can potentially exceed maximum + ;; interrupt nesting by triggering GCs. + ;; + ;; Can that be avoided by having the finalizers and hooks + ;; run only from the outermost SUB-GC? + ;; + ;; KLUDGE: Don't run the hooks in GC's triggered by dying + ;; threads, so that user-code never runs with + ;; (thread-alive-p *current-thread*) => nil + ;; The long-term solution will be to keep a separate thread + ;; for finalizers and after-gc hooks. + (when (sb!thread:thread-alive-p sb!thread:*current-thread*) + (run-pending-finalizers) + (dolist (hook *after-gc-hooks*) + (handler-case + (funcall hook) + (serious-condition (c) + (warn "Error calling after-GC hook ~S:~% ~A" hook c))))))))) ;;; This is the user-advertised garbage collection function. (defun gc (&key (gen 0) (full nil) &allow-other-keys) diff --git a/version.lisp-expr b/version.lisp-expr index 3f32811..aaf4ccf 100644 --- a/version.lisp-expr +++ b/version.lisp-expr @@ -17,4 +17,4 @@ ;;; checkins which aren't released. (And occasionally for internal ;;; versions, especially for internal versions off the main CVS ;;; branch, it gets hairier, e.g. "0.pre7.14.flaky4.13".) -"1.0.5.9" +"1.0.5.10" -- 1.7.10.4